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A METHOD FOR OPERATING PROACTIVELY SECURED APPLICATIONS 

ON ' AN INSECURE SYSTEM 

FIELD OF THE INVENTION " • * ' 

The present invention \is_ In . the general field of 

proactive security system and related applications. 

,~ ~' ■ f, •■ > *. ~ ' 1 

BACKGROUND OF THE IMVENSION 

Traditional security systems 'assume that one or more 
systems are always secure, "* i . e. ' are never controlled by 
the attackers. The moclei of Proactive Security does not 
make this assumption. ' Instead, it considers cases where 
all components of, the " "system may be. broken-into and 
controlled by an attacker, with restrictions on the 
number of components 'broken-into during the same .time 
periods (day, week/- „.) , ' *. 

Proactive security /'shows how to maintain the overall 
security of a system even under such conditions. In 
particular, it provides automated recovery of the security 
of individual components, avoiding the use of expensive 
and inconvenient manual processes (except for some 
"aggressive" attacks/ "which cannot be prevented - but are 
definitely and clearly detected) . The technique combines 
two well-known approaches to enhan'ce the security of the 
system: distributed (or threshold) cryptograph/ which 
ensures security as long as a threshold (say half) of the 
servers are not corrupted and periodic f refresh (or 
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"\:r rec? T :v rw^-c 
update; of the sensitive data (e.g, keys) held by the 

servers. In short, ^, - 

Proactive* distributed* + refresh 

3 .'..Oi'i-c: . - V,- 1 l - v- ' " 

This way, 'the. ~ "proactive " approach guarantees 
uninterrupted security "Ks long as " not ' too many servers 
are broken at the ""same"'* time Furthermore/ it does not 
require identif ±catToft° A when° fef- system is broken into, or 
after the attacker : lcrses : control;' instead, the system 
proactively invokes- recovery procedures every so often, 
hoping to restore security to components over which the 
attacker lost "'control ?-- J: - ~ '" rc v p 1 

Proactive security 8 c is -"'ftigfiiy 1 desirable in many 
realistic settings/ %n~ particular; f . " r y 

• When a high level" of security is required, together 
with fault toferEince ?; '(&s • redundancy improves fault 
tolerance but operil r idore points for attack) . 

• To ensure acceptable level of system using weakly 
secure components- such as most commercially available 
operating systems. 

Recent results show that many fundamental cryptographic 
functionalities may be^ achieved even under the proactive 
security model - as long as most components are secure 
most of the time. In particular, proactively secure 
protocols have been devised for the following problems 
(see General Overview in [2]:; 

• Secret sharing. 
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• Discrete-log-based /-'digital . signatures, and in 
particular DSA it--^ 

• Secure and- end-to-end: communication 

• RSA and in particular- 0 generation "of the RSA shared key 
Pseudo-random generation ' 

• Key distribution center 

• This substantial set' of ' known results in proactive 
security did not /yet produce any practical security 
product or solution, " (In fact, there are only a few 
developments of distributed security - the most well 
known may be the SET credit card standard\s 
certificate authority; see also 'related art' below). 
The creation of such ' a proactive solution is 
non-trivial, as the^protocols are often quite complex 
and nontrivial-' r tb c ' implement. Furthermore, the 
protocols are specified* toSer some simplifying 
assumptions and.; ddTnot address some needed elements, 
such as interfacing " between the" proactive service and 
the applications using "it : 

-Applications of the Proactive Security Services 

There are- three kind's > of -applications that may take 
advantage of the proactive' security ' services, as follows: 

• Centralized applications ^ a "traditional" application 
running, on one .server only, -, r The T application uses a 
proactively secure service provided by the toolkit. 
For some applications and services, this could provide 
a significant advantage, at minimal change to existing 
applications. Some typical applications are: 
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• Secure logging: .each client application may add 
entries (events) . to the log; however, none of them can 
modify or era&'e *' the O log^ f ' This &ould be of great value 
in improving "intrusion: 'detection tools 1 , as intruders 
often try to erase traces in log files, 

• Secure end-to-end coffinninication: the proactive 
environment can provide; the applications with freshly 
generated and certified public r keys" ^periodically. This 
could be integfat'ed c with- tunneling Mechanisms such as 
secure IP or SSL : i- 7 , r -" :? " r r - 

• Times tamping : can be us^d to' sign a document (or its 
hash) and current 'time," to prove"* that the document 
existed at this time;. - ; 

• Distributed ap^li&ations" ? n -%he '^application runs 

simultaneously oh"! all '^servers, (App_JL„, Appjri) and 
requests jservicV^ through /all ^servers. Each App I 
Interacts directly with its own proactive server 
(PS-I) . A typical application is a certificate 
authority, or in general any workflow application 
requiring secure (multi-person) digital signatures. 
Another application is key recovery (escrow agents). 

• Proactive applications - the application runs in a 
distributed configuration but, in addition, goes 
through periodical .. refreshes by utilizing the 
proactive services. This is required when the 
application security or efficiency requirements cannot 
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be met by the servibes. Examples include multiparty 
protocols such as voting and trading, database, 
operating system and access control mechanisms. 
Another application is a Secure Commerce Server - such 
server cannot lie-- - behind the' firewall although it 
handles confidential data and matters (such as access 
control, certificates, etc.),/ it is therefore natural 
to proactively .distribute the server among a number of 
(independent, afod possibly not even mutually trusted) 
hosts and locations? thus achieving increased trust in 
the server. 



Related Art: 
REFERENCES 

1. D. Boneh and M;~ ^franklin.? Efficient generation of 
-shared RSA keys m ^ In . Proe. Crypto '.97, pp. 425-539. 

2. R, Canetti, R* Gennaro, A. Herzberg and D. Naor, 

Proactive Security: L'dng-term protection against 
break-ins. CryptoBytes: the technical newsletter of 
RSA Labs, Vol. 3,, number 1 - Spring, 1997. 

3. R. Canetti, s. Hal'evi and -A? fierzberg/ "Maintaining 

authenticated communication in the presence of 
break-ins" . To r :{i?:e published' in Journal of 
Cryptography, c 1999> An;, "extended abstract of this 
paper appeared iar the,- Proceedings of the 16 th ACM 
Symp, On Principles of Distributed Computation. 1997 
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4. C.S. Chow and - A.^VHerzberg* ~ Network randomization 
protocol; A proactive ' pseudo-randojn generator. 
Appears in Proq- ";5£ji : . U3ENIX UNIX -Security Symposium, 
Salt Lake City,j .U^h ;/ Jtme 199S,. pg. 55-63. 

5- V. Hamilton, "S. -3?straiF- Satidia' National Labs, 
Implementation^ r o2? p¥6activ$/ :: ; threshold public-key 
protocols r Proceedings " r - of L ~the 1998 ' RSA Data Security 
Conference. — r '^- r 

6, A, Herzberg, ,M.j JakoVsson, S/Jarecki, H. Krawczyk 

and M. Yung, Proactive public key and signature 

u, t - ,"\ica o" re ■ - - 
systems, ACM Security ' 97 « 

There are a few implementation efforts of proactive 
algorithms. Specifically, " the "Network Randomization 
Protocol (NRP) of- [4]', which"'-- provides a proactive 
pseudo-random generator r'^^has" been implemented at IBM* In 
the latter it is assumed that there is no global 
information common to . the proactive . servers and therefore, 
obviously, there is no need to restore it after loss or 
corruption. This assumption poses undue constraint insofar 
as some commercial applications are concerned. 

Another effort, the implementation of proactive 
threshold key protocols, = has been reported in [5]. 

Whilst there , have been efforts to deal with 
applications where , global - information is restored in 
response to loss or corruption they all require to store 
in a protected environment (e.g. ROM) information that is 
related to the group of proactive servers. Obviously, this 
information is not available when the server is 
manufactured and sold, but only much later - when it is 
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migrated into a ..specific proactive environment. 
Accordingly, incorporation of such information requires a 
relatively sophisticated- hardware -and is- of" static nature, 
waning that after having iterated the group related 
global information «* : (or equivalent hardware), 

the information cannot fee 'altered,- if, say, the group 
members change. ^ ; v : - , 

Overview o£ the Proactive. Model and Algorithms 
Model 

The proactive model 'described below assumes typically 
(although not necessarily)' the following. A. set of n 
servers ( «,M-Bn) that are interconnected by complete 
point-to-point communication channels. Time is divided 
into periods (like daysiTweeks...) which are determined by 
some global clock. An. adversary ma y ; (temporarily) attach 
up to t of the n servers^ iny;giVen time period - but at 
different time periods?^ f eient^s of t servers can be 
attacked. As a result/' ill iserveri" engage in a refreshment 
stage at the beginning Sf'each time period, so that any 
server which has been attacked during past periods may 
automatically recover from possible undetected break-ins. 
corruption is assumed to 'be either static (for example, 
disconnect a server f the rest of the network, 
eavesdrop, read se 6 rW-Hata) drMtive/malicious (for 
example, deviate from the 5 ' protocol/- corrupt local data, 
etc.). Therefore, after the attacker loses control over a 
server, the attacker may still know secret information of 
that server (e.g. passwords or secret keys). Furthermore, 
before losing control, the attacker may have corrupted 
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(modified) some of the -"server ',s data . (e.g. public keys of 
certificate authorities)^ r " TJi e refreshment, stage deals with 

both aspects, i.e. recovers ' any, [corrupted data and 

- txcc t c.-l: * 

invalidates any old secret data : (by -choosing new secrets 

or splitting global ' secrets ^ into new sett of shares)* 

This brings the server -back - to 3 running stage, and 

guarantees that any ^formation that^was gathered by the 

adversary becomes worthless after recovery. 



The fact that the attacker ;~"xs 'limited to t corruptions, 
out of n servers, is similar to the distributed (or 
threshold) security' model used many works in distributed 
computing and cryptography. However, in the proactive 
security model, the attacker is allowed to corrupt every 
server - as long/ as '* if do%s ' not"' corrupt more than t 
servers at tie same period. The" "adversary in the proactive 
model is mobile," namely '"^attacked components may be 
released at some point : (due to some security measure or 
other change in the " system " or the adversary causing loss 
of control, often as a result of an attempt by the 
adversary to avoid defection"'* of the" attack) . Furthermore, 
in contrast to other approaches, proactively secure 
systems do not necessarily wait until a break-in is 
detected. Accordingly, '-" a proactively secure system may 
invoke the refreshment protocol periodically (and 
proactively) in ord£r to- mairt€d£^5ani3£ ? errupted security, 
or force detection- For more discussion on the motivation 
behind this model, see [2,3] 

Some attacks on the system cannot be prevented* The 
'classical* example is if the attacker is breaking into a 
server, thereby finding all its secret keys; it then 
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pretends to be that ^-server: while keeping this server 

disconnected from the " : other servers (when the attacker 

lost control over, that;, server) . 'Hpwever, in such cases, 

the attack can-be detected .and raise an alert - inform the 

operator about the attack, Operators- will normally respond 

to such an alert by Invoking special emergency security 

resources and procedures, which are very likely to remove 

y t. : . S r- 

the attacker - and possibly patch her as well. Therefore, 

it is highly unlikely that (smart) attacker will use such 

'visible 1 attacks . 



The proactive security model assumes that even during 
attack, some specific"" data cannot be corrupted* The 
obvious example : for data that is assumed not to be 
corrupted is the "program itself ; if it could be changed, 
recovery is clearly, impossible. Clearly, the program is 
not any different than 'any constant value * used by the 
program; It is assumed that each computer proactive server 
comes with a read only memory which can specify its 
contents- Specif ically*:- it is assumed that each computer 
(proactive server) comes .with such a non-erasable storage, 
e.g., a read only memory (ROM) containing a fixed public 
key, and the corresponding secret key is known only at 
initialization as will~ be explained in greater detail 
below. This assumption is not too difficult to implement 
in practice. The characteristics- -of the specified model 
are described for clarity of explanation and accordingly 
those versed in the art will readily appreciate that 
various alterations and modifications may be applied, all 
as required and appropriate depending upon the particular 
application. 
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There is accordingly 'a" need £n the art to provide for 
an operating environment of a network of servers which are 
set up once (designated group of protective servers) . Each 
server is instantiated preferably at boot time by the 
operating system and is checked periodically, also by the 
operating system. Servers can recover data (both public 
and private data) from- self or other servers in the 
proactive network, if such data is corrupted or lost. 
There is a specific need in the art to provide for an 
initialization and recovery procedures -for a proactive 
operating environment of the kind specified. 
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SUMMARY OF TEE INVENTION: 

The inventions-provides for a proactive 
operating environment that includes a group* of proactive 
servers communicating over a network; each proactive 
server (PS*) comprising:" - 

a storage that includes a non erasable part that 
stores at least a;-, public,., non proactive related, key 
V^srarc / said storage -further- includes an erasable part 
for storing private and public data; said proactive 
server is further associated- with a discardable one-time 
private key S start that corresponds to said public key 
^start/ said proactive server is further associated with 
configuration data C> 

a processor for providing at least proactive 

<- i' ~*i - * " 

services to applications 

the proactive server is associated with a group 
public proactive key Vfc«?r common to said group of 
proactive servers and a share S c $rt of a corresponding 
private proactive key set/ ^ - r 

the processor -is '-operative to ^invoke initialization 
procedure for generating restore related information; 

the processor is ' further 1 operative to invoke a 
restore procedure for utilizing at. least said public, non 
proactive related, key- V*sta : it ~< -teald restore related 
information for restoring at least said public proactive 
key Vcsrt* " *"'- : 

The invention further provides for a method for 
providing a proactive security in proactive operating 
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environment; the proactive operating environment includes 
a group of proactive servers communicating over a 
network; each proactive server (PSi) comprising: 

a storage that includes a non erasable part that 
stores at least - a public/ non: proactive related, key 
V* start / said storage' further includes an erasable part 
for storing private and public data; said proactive 
server is further associated witli a discardable one-time 
private key S x S tazt that ^corresponds to said public key 
V x st&£t/ said proactive ~se'ryer is* further associated with 
configuration data C; 

a processor - for providing at least proactive 
services to applications; 

the proactive server is associated with a group 
public proactive key ^ V C bat common to said group of 
proactive servers and a share S X csrt of a corresponding 
private proactive key S C ert/ the method further including: 

invoking initialization , procedure for generating 
restore related information; and invoking a restore 
procedure for utilizing at least said public, non 
proactive related, key r V s start and said restore related 
information for restoring at.- .least said public proactive 
key Vcsjw- ' " "\ 
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Still further, the- invention provides for a storage 
medium storing computer; implemented program for providing 
a proactive security -in proactive operating environment; 
the proactive operating- environment includes a group of 
proactive servers , communicating over a network; each 
proactive server "(PSi) comprising: 

a storage that includes a non erasable part that 
stores at least a . public, non proactive related, key 
V T start / said storage further includes an erasable part 
for storing private arid public data; said proactive 
server is further associated with a discardable one-time 
private key S I stnrt that ' corresponds to said public key 
V^starzs said proactive ' server is ''further associated with 
configuration data C; 

a processor for- providing at least proactive 
services to applications; 

the proactive server is associated with a group 
public proactive key, Vcbrt common to said group of 
proactive servers and a share $ x c£&¥ of a corresponding 
private proactive key S C ert/ the method further including: 

invoking initialization procedure for generating 
restore related information; and invoking a restore 
procedure for utilizing, at 1 least said public, non 
proactive related, key \V r start and said restore related 
information for restoring at least said public proactive 
key VeaRy. - r " "< ' '<* 1" '' 



000000 



13 



- rtbodi I---: r :\ ;i;h . 

BRIEF DESCRIPTION OF THE DRAWINGS 

In order to -understand Tthe invention and to see how 

" v./ 7." i ^ 

it may be carried out' in practice, a preferred embodiment 
will now be described/ by way of non- limiting example 
only, with reference -Xo the ' accompanying drawings, m 

which; ;- ";c . y - ? 

Fig- 1 is a " generalized , proactive network in 
accordance with one embodiment - of t the invention; 

Fig. 2 is a " 'generalised" proactive server (PS) 
architecture in accordance with one embodiment of the 
invention; 

Fig. 3 is a flow" chart "illustrating an initialization 
procedure executed ' by '""a PS," in " accordance with one 
embodiment of the invention; and 

Fig. 4 is a-, flow chart s illustrating a recovery 
procedure executed by" a"' PS/" "in " accordance with one 
embodiment of the invention.. 

DETAILED DESCRIPTION OF SPECIFIC EMBODIMENTS 

There follows a: description of the basic architecture 
and functional operation -j ypi a proactive operation 
environment in accordance rwith -one embodiment of the 
invention. 

- n , , r -r , , , V ' ' 

Thus f the proactive operating "environment includes a 
network of servers (100) which is set up once - this 
network is referred to as the Proactive Network, or group 
of proactive servers- (see Figure 1). Obviously, the 
network may include other servers which may form part of 
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other proactive group or groups, all as required and 
appropriate. It should ■. be noted that a server may be a 
member of two or more groups ~ -Server should not be 
construed as bound to . r any , specific platform or 
architecture. " . ' 

Each node in the network runs a proactive server 
(Pserver), of which only 5 are shown (101 to 105). The 
basic, non limiting, architecture of Pserver (200) (in 
accordance with one embpdiment ) is depicted in Figure 2. 

+ „ ~'bCli ' . * ; 

Thus, a Pserver communicates with other Pservers via the 
proactive network (205) , and provides proactive services 
to applications ( designated -generally as (201)) by means 
of, say, Application Programming ' Interface (API) - A server 
is initiated at boot time (203) and checked periodically 
by the operating system (204)\ " ; 

Modules of the Pserver 

By a non-limiting ^iSb^imVht, ^the } internal design of 
Pserver (200) is composed of the following modules: 

• The Controller: This is the main "engine" of the 
program. It manages, .the Pserver data, dispatches 
incoming messages to - appropriate protocols in the 
protocols tree, keeps the' status of the proactive 
network (namely, which nodes are active and running) . 

• Communication Module:, This module is responsible for 
the secure transmission and receipt of messages 

oooooo :* 1*5 
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across the proactive network * ind with the various 
applications that^tfse" th^"Pstfrver services. 



• Library of Proactive .Utilities This library is built 
upon a standard" ./cryptographic library and is a 

5 collection of utilities '(objects) that are needed for 

implementation of £rr6active algorithms and protocols. 
It includes, for c example ; Shamir's secret sharing 
SSO, Feldman's Verifiable Secret Sharing/ Joint 
Secret Sharing "and "error-correcting" polynomial 
io interpolation. Note ' that this ' library concerns 

preferably functionalities' that are needed locally in 
order to perform th^' ''protocols. 

• library of Proactive Protocols:- A proactive protocol 

(in contrast to a "proactive "utility) is a thread of 
15 code that is executed at one server and performs the 

logical flow of communication steps required by a 
certain protocol, "using the proactive utilities 
library for its local computations. The 
implementation is abased e.g. on a collection of 
20 protocols that '.are ; : [executed by the Pservers (either 

for its proper operation or as a proactive service to 
other applications).. Examples of protocols are all 
variants of Secret Sharing protocols, as well as the 
Initialization and Recover ~ Procedures , according to 
25 the invention which will be described in greater 

detail below. 
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• The API Module : r A' "module that : provides interface to 
applications thatV^n over the proactive operating 
environment. 



The Pserver Data , - ; 

i. • - , _ 
The Pserver, , maintains some key internal data. 

However, the maintenance of these data .raises a few 
algorithmic problems, ' as ' the. server must be able to 
refresh and recover ""'itself periodically, and this 
includes recovering its "ait a or at ' least verifying that 
it has not been corrupted.' ' The server's data is one of 
three types. The specif led "•' data 5 are stored in various 
modules designated generally as storage (206) in Fig. 2, 
as follows: 



1. ROM (or other non-erasable part) data - these "write 
once" data is assumed to be" ' immutable so that any 
attack on the system" cannot tamper' with it, however, 
an adversary may ' learn it. It is used for 
bootstrapping purposes as otherwise a recovering 
server could not 'bring itself' to a secured state. 
The design, as detailed, below, attempts to minimize 
the amount of data that must be stored in the ROM in 
order to safely boot the server; in particular it 
shows that is:' ..suffices 'to store a public (non 
proactive related) - key, • e.g. server's unique 
identification code "or the server's port number in 
the ROM for the Pserver to be completely 
recoverable. The invention- is, however, not bound by 
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any specific data '?t)iat\:''ar.e-, : stc>re.d- : in the ROM and 
likewise not .... to" \ the. " public and private data 
described below". .". . _ ■- 

Public data: Parts -of "this; data, are common to all 
servers, but , oth^r parts are specified to the 
particular Pse^yer^yet.. itsVexposure to the entire 
proactive network does not interfere with the 
security of * a w Psefve±- ^ Since * these data are 
necessary for the proper operation of any server and 
thus must be recoverable, " The public data are 
preferably duplicated * among all servers so that 
during recovery the * data * can be reconstructed if 
need with the assistance of" the proactive network. 
The details of this" process are" described below. The 
public data may \bV%xtencied during the lifetime of 
the system, for' example^by generating new long-lived 
secrets (the "^common 'fields ' "of "these long-lived 
secrets is added to the public information) . 

Private data, .specific to a particular server* One 
such example is tfie' server's share of a private 
proactive key. These data are typically not 
recovered, but "instead are ' refreshed. It also 
requires (e.g. for the one-time private key) the 
ability to be-;* compl"e€eIy^EaSea;.6 fr^ the system 
without leaving any traces, which is a property that 
needs to be supported by the operating system. 
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The Proactive Security opoeration 

J. > c i 



In accordance with v the ] invention, a proactive 
operating environment 'must " maintain proactively secure 
communication among* the ^server s, as well as a proactive 
5 internal signature key., for- : the entire lifetime of the 
system. For that, these, two protocols must be initiated 
and undergo refresh at, .every period', where a refresh may 
actually involve recovering in any server if that server 
had detected that some^dr its dat'a was corrupted or lost. 

10 Publication [3] provides ' the design of the integrated 
proactive protocols' " Vf " signatures and secure 
communication, and-- [5/6]' for the specific proactive 
signature mechanism. .However,- [3] requires every server 
to keep in read-only memory (ROM) a copy of the public 

15 non-proactive related V^key' 'Vcert (whose corresponding 
secret key Scert) is; -shared between all the proactive 
servers, and these shares S 1 cevt (t) are refreshed at every 
period t. This assumption is not very practical, as the 
public key Vcert (common, to- the group of proactive 

20 servers) is not . available when the computer is 
manufactured and sold,*: .but only much later - when it is 
integrated into a . specific proactive environment. In 
accordance with the * preferred embodiment of the 
invention, it is shown how to provide the requirements of 

25 [3] while requiring only that- each computer comes with 

pre-installed, machine-unique pair of secret key S 1 s tazt 
(e.g. on erasable disk}/ serving as the one-time private 
key and public key V^rt (on ROM) . It is accordingly 
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appreciated that unl±$i£tfc&£fc,' U*st c art ~'is unique and not 
group related. ~ '. pF 1 •' 



Another practical , -aspect ^whichf* has, to be dealt with 
is that the proactive server' * needs some constants 
configuration information ■ such as, , 5 IP addresses of other 
servers, cryptographic. V parameters ' used in the 
cyrptographic algorithms, and. so on. The set of these 
(public) constants' are denoted " by C- The proposed 
protocols include mechanisms to recover C periodically 
(if the adversary corrupted C when breaking onto the 
server at the previous period). Let Mi=[S x 6t aTt(V cezt/ C)] be 
the signature of server I on (V c&rt ,C) using its initial 
key S x staxt . M denotes the' concatenation of all Mi's, that 
is M^fMzsM^Mj , Hencei" is \tSe rXsvariant Information of 
the system. ' * 

Publication [3] provides ' a "review "of the periodical 
„ "tat r. , - r -lec^r: ,rr- 

refresh protocol, which assumes the availability of an 

unmodified Vcerfc at every proactive server. Typically, 
although not necessarily, the recover procedure of the 
invention is invoked /when ^ the refresh * procedure has 
encountered loss or corruption of data that needs to be 
recovered. 

The initialization protocol is executed, preferably, 
at the setup of the system and is described with 
reference to Fig. '3.' The goal'' is' Vo 'bring the servers to 
a state from which they can safely perform the recover 
module at the refresh stage, if necessary, and accomplish 
proper operation of . the system. To this end, the 
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initialize procedure generate a so called restore related 
information. 

The input to the protocol (i.e. the initialize 
procedure (301) 'is'"" the" configuration (designated 
generally as C and (S x at ^t, V^tart ) '/'where V* 5t art is the 
public non proactive related part of the key stored in 
the ROM module of the' proactive data (206) . V* 5Cart is 
considered non-proactive as it is not group related. Put 
differently, the same V Z st*rt key may be used for the 
Pserver #i regardless of the group of proactive servers 
to which it belongs. V* flt *rt stands, for example, for the 
PS unique identification code embedded in the ROM during 
manufacture. S J $t axt is the corresponding private key which 
is used once and must be discarded afterwards. 
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At first (302-305)", a set "of keys S x (0) , V x (0) , 
Ex(0) f D x (0j are generated, and" all except D z (0) are 
broadcast over the network channel to the rest of the 
servers (1. .1-1 ,1+1. .rd, so. as, to authenticate and 
encrypt the channel, ^all> as known per se. As is well 
known the E x (0) f &i(Q^ are optional whereas Sz(0) , V x ( 0) 
are, as a rule (albeii:"'nc^t l always) A used. 

Next, a pair of keys are' ' generated, i.e. group 
public proactive key is" generated Vcezt and a share of the 
corresponding private^key ' S C ext (306) by a well known 
procedure (e.g. see [1] (30^> 1 giving rise to V Cejr t public 
key common to the group of the proactive servers. S^cert is 
the private secret ihare^bf SP "(i) ' 

Any message sighetfby. V Cer t is assumed to be truly 
signed by the members of the group. 

< i T~ r-- -~ ~*» " *" f • - f / ~ - - O 

In the next steps' a' 'joint 'signature (S c &rt (M),M) is 
generated, standing/ preferably, for the* invariant 
information to help recovering servers (as will be 
explained in greater detail .below) , 

To this end, the Vc e lt public; key and the 
configuration C are signed using the one-time private key 
S x starv so as to constitute M x rhess&ge (308) . In this 
connection, it should be note'd that the configuration C 
is not bound to any specific contents and may vary, 
depending upon the particular application. Having 
generated Mx r the one-time private key S x st&£t is discarded 
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(309), such that it, casuno longer be accessed and used by 
any other node. . . - i '-^ r - 

Mi is now broadcasted " to air, .afid^Mj is received from 
all respective SPj (310);. \. : Now: the , Invariantlnfo is 
5 constructed by concatenating^ Mi T-Mw (311) and is signed 
(312) so as to generate;~the joint, signature (S c &rt (M),M). 

The information generated by the initialize 
procedure, and which will later be used by the restore 
procedure, constitutes " one' form' of restore related 

10 information (e.g., fS Ce rt ' (M) /M) ; S I SZdrt (Vcert C) . 

/ £3 '» .z ~* r.s 'r : * * 

It should be noted that the restore related 
information includes a' "self part serving for restoring 
at least the V cer t . (and "possi&ly ^other) info (e.g. the 
specified M 2 ) of the J _specif ied ' Pserver, and optionally 
15 also "others" part^e.g, the *'S C ert (M),M)) which will 
assist other servers* irT the group " to recover their 

i 

respective V ce rt (and possibly other) info. It should be 
noted that in the specific example described herein, each 
server generated "others" .info fi'.e. M and signed M) 

20 which enable any other server in the group to restore its 

Ve&tt info solely relying on the ^others" info of that 
particular server/ since', M is a" concatenation of the M x 
parts of each one of, the other "members in the group. 
Thus, any server which is subject to corrupted or loss of 

25 V CG rt info, will be able on the basis of the verified M 

received from the specified "other" server to extract its 
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respective M x and using "the V x B t^t key stored in its ROM, 

- - i< *• - ; , - >\ 

to construct V caxt ^and possibly other lost data).. 

Those versed in the , art " will readily appreciate that 
this is not necessarily, ^always f the case . Thus, for 
example, by another 1 eiitoodiment a given Pserver can 
recover the V cevt info- "on "' the basis of "others" info 
received from two or moire' of' the' specif ied group members. 
In this connection' "it - : should : be- noted, generally, that 
the unlike the "self ,/:T ihf o l that \s "always generated, the 
"others" info is generated 6nly : when required, depending 
upon the particular application. "- 

~ - o * ~ , * " * 

Having completed^he'' initialisation procedure, the 
SP is ready for . trie" recovery, procedure which may be 
invoked by the ref resn 7 pr6c,edurey as described above. The 
recover procedure^ utiifzelr or lihe* ' restore related data 
generated by the initialization procedure. 

At the beginning ■ of every" recover, Vcert is 
regenerated and the constant C is restored for any server 
which lost these r data. . As- : a result, it brings a 
recovering server - to - a vstate from which it can 
participate in the Refresh protocol described above. It 
is assumed that any operational .server has a valid copy 
of a signature on M,l- the Invariant Information of the 
system, signed by" tne,, distributed" signature key Scert - 
an assumption that is ' supported ■-. by the initialization 
module described above.-,: 
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Essentially, this,. -.protocol ; allows any recovering 
server to gather _ M, ' the . Invariant Information of the 
system, from other operational : servers^ as long as there 
are enough of them. Note rthat M needs to be 1 pushed 1 
around the system si^ce . sl recoyering ; server may not known 
who its partners are; -, {recall that \ C, the program 
constants, contains . information • such as IP addresses). 
The' protocol is executed r by- ail .servers, and by the end 
of it, a server detects .- whether ; it is ' operational' or 
•recovering'. o/ ' -"' ■ 



Turning to Fig: 4, ?;;: it ' first, ■ V^start is extracted 
from the ROM (401). In - order ' to validate the joint 
signature (S cere (M> ,M) • (402) the following procedure is 
invoked. To this end, 1 the 'v Csr i should" first be extracted 
which necessitates to '-extract M x from M(403) . This can be 
easily accomplished "considering that M is a concatenation 
of Mi.. M N . Having Obtained' , a Vcert ' 'is constructed by 
applying V^carc (that* i£" available 0 ' to"' the recovering SP as 
it is stored in the rom)^ to S jSfj. v It is" recalled in this 
connection that Mj "'" consists "of "S r start (Vcerr, c; , and 
accordingly applying t^staxt thereto will give rise to Veen 
(and the configuration C) . 



Those versed in the art .will readily appreciate that 
by using a unique ' "key. a -priori /'stored: ■ in the ROM, the 
recovering SP is able to, restore the Vcert key/ which is 
group dependent (non-proactive related) . It is recalled 
in this connection, that according to hitherto known 
techniques, it was required to maintain the group 
dependent key for the . recovery procedure. This 
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requirement according ""to ...the ' prior are posed undue 
constraint as it was required to embed during manufacture 
(or afterwards using , dedicated expensive hardware) a 
group dependent key. in ^each SP, whereas according to the 
present invention, it is" suf f ici^ht to- embed a unique key 

Vst&rt (say the SP identification, code) and therefrom to 

" \tC - ' * -r- ":'c ' " ' 
reconstruct the group^depen&ent key Vcbrt. 

Having cons truct fed - " "VbtR^ (405) the latter is used to 
validate M by applying Vceat to the joint signature 
part(Scerc ( M ) ) (406) /"if the " result matches M {which is 
explicitly included in the "joint signature) (407) , then 
the server becomes 'operational (408) . In other words, by 
validating M/ the recovering ' server has confirmed the 
validity of all Mj of '€he respective SPs and consequently 
has confirmed that each corresponding SPj is a member in 
the group. M and S c & £ z ~{tfO aire" then sent to all the members 
(409) allowing each '"one* of them to exploit M for 
recovering its self V C ert> 

If f on the other- ihand, : M is invalid (i.e. the 
application of V C£I & in;,. step, ( (406) did not result in M f 
then the SP await the receipt of another joint signature 
(410 and 411) and in; -response repeats steps (403) and 
onwards until M is validated. 

In the claims below, alphabetical letters and roman 
symbols are used for convenience only and do not 
necessarily imply any order of the method steps. 



The present invention has been described with a 
certain degree of particularity, but various alterations 
and modifications may be carried out without departing 
from the scope of the following claims: 
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CLAIMS; : ^ 

1 1 . A proactive operating environment - that includes a 

2 group of proactive,- servers^ communicating over a 

3 network; each proactive server (PSi) comprising: 

4 a storage that ."includes - a non erasable part that 

5 stores at least a public,^ nonV proactive related, key 

6 V 1 start / said storage further includes an erasable part 

7 for storing private and- public data; said proactive 

8 server is further associated with a discardable one-time 

9 private key S 1 start that' corresponds to said public key 

10 V 2 startf said proactive '"server is further associated with 

' ^ r. 5 !:*:' * * • 

11 configuration data C; 

12 a processor f or /prbviding / at least proactive 

13 services to applications;' 

14 the proactive server is associated with a group 

15 public proactive key Vcsar "common to said group of 

16 proactive servers and"" a share S Z ce&t of a corresponding 

17 private proactive key SckrtS 

18 the processor is; -operative to invoke initialization 

19 procedure for generating, restore related information; 

20 the processor is further operative to invoke a 

21 restore procedure for utilizing at least said public, non 

22 proactive related, key -ty* start and said restore related 

23 information for restoring at least ?said-- -public proactive 

24 key Vcert* / 1 

1 2. The system according to Claim:!, wherein said restore 

2 procedure is invoked by refresh procedure. 
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3. The system according to + Claim 1/ wherein said 

non erasable part -ot the. ^storage^ being a ROM memory 

*:>:"'ac c : rc : : - r g ~ c C --■ ?- 7 ^ 
module- — - ; 

4. The system' according tp - Claim 1, wherein said 

applications being,, at least one, oi the following: 
Secure logging/' Secure end-to-end communication, 
Timestamping, Certificate " authority 7 r Key^ recovery , Voting, 

Trading, Database, v . Operating system. Access control 

- - - r: ^ o — " " 4 c c 3 _r rj M j r r. '■■ 'C j „: : 
mechanisms, Secure Commerce. 

5, The system according" to Claim 1, wherein said 
restore related information' incluHes' restore related self 
information. " * 

6, The system' ^acSor^ing r to~~Claim 1, wherein said 
restore related information includes" restore related 
others' information/' --r\* \ 

7, The system 'Icfiording to'' Claim 5, wherein said 
restore related self information includes M x - S start fVberc/ 

: '? - r }T C" 4 ^ 

8, The system r Acc6rdirig "to "claim 6, wherein said 
restore related others' information. includes {Sc&ct(M) *M) • 

9, The system ^according to' Claim 1, wherein said 

initialization procedure ■■ includes:- 

(i) input for,, receiving ; at least configuration 

data C, public, non-proactive related key V 1 start and 
discardable one, time.- private key S x S t*rt/ 

(ii) the processor generating a set of keys S £ (0) , 

Vj(0) , E x (0) D X (0);>*. 

(iii) broadcasting , said set of keys except D x (0) 
over the network to the rest of the servers 
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.p *,*_. „ ( T 

10 {2. *i-I,i+2, .n)^ ia»-Jthe-. group,.- -so as to authenticate 

11 and encrypt the network channel; 

12 (iv) the processor generating the group public 

13 proactive key^ c '-Vc^rt* - and -> a - share (5 cEsrJ of 

14 corresponding -private proactive key Scert* 

15 (v) the processor-"' generating restore related self 
is information ,that includes M x - AW, C). 

17 (vi) discarding Tthe" one-time, private key S x sta*t7 

18 (vii) broadcas'ting^ki to 'all , servers in the group, 

19 and receiving M/' from "all "respective SPj servers in 

20 the group; the' processor concatenating said Mi. -Ms so 

21 as to constrct M; 

22 (viii) the processor generating a joint signature 

23 [Scert (M),M) that ' 'forms part* of said restore related 

24 others' information; and . _ ^ 

25 (ix) broadcasting ' the 'joint ' signature (S Ce rt 

' Jill C'>r j Dvr; . . v — 

26 (M),M) • 

1 io. ** The" system " according * to" Claim 1, wherein 

2 said recover procedure Includes: 

3 (i) the processor exferactih'g V^start/ 

4 (ii> the processor extracting Mi from M; 

5 (iii) the processor* constructing Vb«t by applying 

6 V r stare to M I; : ' ' ^ 

7 (iv) the processor validating M by applying Vcs?r 

8 to the joint signature ; part (S c &rt (M) ; if the result 

9 matches Jtf theiv"the : server becomes operational; sending 

10 M and S Cer t (M) to all the group " servers; 

11 ( V ) if, on the other hand, M is invalid, then 

12 waiting the receipt;, of another joint signature and 

13 in response repeating said (ii). to (iv) . 
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1 11. For use in the- : system^of ' Cllaim an initialize 

- ?aV~ fvx: var '-clue r 



8 



2 procedure. -r .j,^.* • 

1 12. For use in the; . system af :: ^Claim 1, a restore 

- z s ^ c c :l b : : " ^ " i £ ^ 

2 procedure. - -r v;i ■ i , " 

1 13. A method for Kp^rdyiding'" 'a- 7 proactive security in 

2 proactive operating - environment; / the proactive 

3 operating environment^,, includes a group of proactive 

4 servers communicating dver "a" network; each proactive 

5 server (PSi) comprising- ^ „; 

6 a storage t!hat ^includes a^non erasable part that 

7 stores at least a 'public, non proactive related, key 
V J start / said storage" further ''includes 'an erasable part 



9 for storing private 'and'' public "data; said proactive 

10 



server is further associated with a dxscardable one-time 
private key S x S z**t that "^corresponds to said public key 
V* starts said proactive " server is 'further associated with 



11 

12 

13 configuration data C; ~. ~ 

14 a processor' : f o]T r ^roviciirig^ . at'" least proactive 

15 services to applications; 

16 the proactive "server "is "associated with a group 

17 public proactive' key Vcbrt common to said group of 

18 proactive servers "and a ; share S J awr of a corresponding 

19 private proactive key Scert; the method further including: 

20 invoking initialization procedure for generating 

21 restore related information; and invoking a restore 

22 procedure for utilizing at ^ least" "' said public, non 

23 proactive related, key._ V 1 sta rt and said restore related 

24 information for restoring at least . said public proactive 

25 key Vcsrt- 

1 14. The method according to Claim 13, wherein said 

2 restore procedure is invoked by refresh procedure. 
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1 15. The method according .-to Claim.. 13, wherein said non 

2 erasable part of the. storage being a ROM memory module. 

1 16 . The method according to. Claim 13, wherein said 

2 applications being at, least one of the following: 

3 Secure logging,. Secure . end-to-end communication, 

4 Times tamping, Certificate authority, Key recovery, 

5 Voting, Trading, Database, Operating system, Access 

6 control mechanisms,. Secure Commerce. 

1 17, The method according ' to Claim 13, wherein said 

2 restore related information includes restore related self 

3 information* 

1- 18. The method'' according to Claim 13, wherein 

2 said restore related information includes restore related 

3 others' information. 

1 19, The method* 5 "' According to Claim 17, wherein 

2 said restore related self information includes M x =* S z S t&rt 

3 (Vcext, C). 

1 20. The method"" According' to Claim 18, wherein 

2 said restore related others'' "information includes 

3 lSc*zv(M),M) . 

1 21* The method,, according to Claim 13, wherein 

2 said initialization procedure .includes: 

3 (i) receiving : at least configuration data C/ 

4 public non-proactive related key V^szazt and discardable 

5 one time private key S x st arzS 

s (xx) generating a— set 6f ; ke;ys r Sf f 0; , Vj (0) , E? (0) , 

7 D z (0); 

8 (iii) broadcasting said set of keys except Dj(0) over 

9 the network to\ the rest of the servers 
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(1- .i-l,L+iy.n\ -in/ ' the^gVoiip^ ; ; -so as to authenticate 

11 and encrypt the network channel; 

12 (iv) generating . the c group public proactive key V Ce rt 

13 and a share-' {SI'\ C ert)> of'" "corresponding private 

14 proactive key 'S'cbmJ ; -r- v 

15 (v) generatingfrfestore" related '.self information that 

16 includes Mj = &staz£:JVcezt/ C) • 

17 (vi) discarding' theC one-iime private key S start/ 
(vii) broadcasting H z to "all servers in the group, and 

receiving Mj froiti all ' respective SPj servers in the 
group; the processor 'concatenating ' said Mi- -M M so as 



18 
19 
20 

21 to constrct M; I' 



22 (viii) generating" a*" joint signature ' '(Scert (M) ,M) that 

23 forms part 'of* said" " restore " ' related others' 

24 information"; and""''" " ~. f , 

25 (ix) broadcasting ' the' joint" signature (S C ert (M),M). 

1 22. The me : t^'oci' adcorciihg " r to Claim 13, wherein 

2 said recover procedure'ift l 61li^s: 

3 (i) extracting V start, 

4 (ii) extracting Mj from AT/ 

5 (iiij constructing V^rt by applying V l start to 

6 (iv) validating M by ? applying Vce&? to the joint 

7 signature part (S Cer t (M> ; if the result matches M then 

8 the server becomes operational; sending M and Scerz 

9 (M) to all the group servers; 

10 (v> if, on ' the other TrAnd,"M"Ls invalid, then 

11 waiting the receipt of another joint signature and 

12 in response repeating said (ii) to (iv) . 

1 23, For use in the method of Claim 13, an initialize 

2 procedure - 
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24. For use in the method of Claim 13, a restore 
procedure . 
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25. A storage medium,,- -storing- computer implemented 

zs.ll " :cri' ■--ores :o 
program for providing, a proactive security in proactive 

-" ': ~ :.v ~ se' Vv:r i : ;'u;: 
operating environment;^,, the^ proactive operating 

environment includes, ^ a_ group- of . .proactive servers 

communicating over 'a network;*"' " each 'proactive server 

(PSi) comprising: 

a storage that "Includes a" hon erasable part that 

stores at least a public, non proactive related, key 

Vstart / said storage further includes an erasable part 

for storing private and public data; said proactive 

server is further associated with a discardable one-time 

private key S I st&rt that '^corresponds to' said public key 

V^st^t; said proactive'server is" further associated with 

configuration data C; " 

a processor ,,for "providing,, at least proactive 

services to applications;, 

the proactive server 'is associated with a group 

public proactive key , V CE rt common to said group of 

proactive servers and a share S i C ert of a corresponding 

private proactive key Sceat; the method further including: 

invoking initialization' procedure for generating 

restore related information:; and . invoking a restore 

procedure for utilizing - at least said public, non 

proactive related, key * : V* start and said restore related 

information for restoring at least said public proactive 

key Vcert- : - . • ' " :: • " 
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, ABSTRACT 

A method for providing a proactive security in 
proactive operating" environment . * r The proactive operating 
environment includes ^ a group of proactive servers 
5 communicating over a network. Each proactive server (PS T ) 
includes a storage that' includes a non "erasable part that 
stores a public, non 'proactive related, key V st&zt. The 
storage further includes * an erasable part for storing 
private and public data* The proactive server has a 

10 discardable one-time priVate key S x S zarz that corresponds 
to the public key V I s ±arz. The proactive server further has 
configuration data cY "Tliere is ' further provided a 
processor for providing a proactive services to 
applications. The proactive server' has a group public 

15 proactive key Vcert . , common to -the group of proactive 
servers and a share S x csat of a corresponding private 
proactive key Sc&rt. The method further includes the steps 
of invoking initialization procedure for generating 
restore related information/ and invoking a restore 

20 procedure for utilizing the public, non proactive 
related, key V £ £taxt and' the - restore related information 
for restoring the public proactive key V C ert- 
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